📄️Identity & Access Control

How people sign in to Boxcurve Unity through Microsoft Entra ID, how the application identifies them, and how access to features and data is controlled by role.

📄️Data Residency & Isolation

Where the information you enter into Boxcurve Unity is stored, the circumstances in which data leaves your Microsoft 365 tenant, and how your data is kept isolated from other organisations.

📄️Activity Logging & Audit

What activity Boxcurve Unity records inside your Microsoft 365 tenant, where those records are held, who can view them, and what your organisation must enable and retain for audit evidence.

📄️Secure Configuration

How to configure Boxcurve Unity securely once it is running in your tenant, across the three layers of shared responsibility between you, Boxcurve and the Microsoft platform.

📄️Data Held & Handling

The information Boxcurve Unity holds inside your Microsoft 365 tenant, where personal data is involved, how access is controlled, and where data can leave your tenant through optional integrations.

📄️Compliance Support

How Boxcurve Unity's capabilities can help your organisation meet its compliance obligations, with a conservative mapping to the controls of common frameworks.

📄️Architecture & Data Flow

A one-page technical orientation to the Boxcurve Unity components, trust boundary, and the channels that cross it.

📄️Privacy & Personal Data

How Boxcurve Unity holds personal data, the controller/processor split, and support for data-subject requests.

📄️Vulnerability Management

How vulnerabilities are prevented, detected, and disclosed for Boxcurve Unity.